The threat actors behind the supply chain attack targeting the popular Trivy scanner are suspected to be conducting follow-on attacks that have led to the compromise of a large number of npm packages with a previously undocumented self-propagating worm dubbed CanisterWorm.
The name is a reference to the fact that the malware uses an ICP canister, which refers to tamperproof smart contracts on
SOURCE:
Oracle has released security updates to address a critical security flaw impacting Identity Manager and Web Services Manager that could
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added five security flaws impacting Apple, Craft CMS, and Laravel
Trivy, a popular open-source vulnerability scanner maintained by Aqua Security, was compromised a second time within the span of a